Environment:Microsoft BIPIA DeepSpeed Finetuning Environment

Overview

Multi-GPU DeepSpeed ZeRO Stage 3 environment with 8x V100 GPUs for white-box defense fine-tuning of LLMs against indirect prompt injection attacks.

Description

This environment provides the distributed training infrastructure for the BIPIA white-box defense fine-tuning pipeline. It uses DeepSpeed ZeRO Stage 3 with CPU optimizer offloading, fp16 mixed precision training, and gradient checkpointing. The training pipeline is built on HuggingFace Transformers Trainer with DeepSpeed integration. The configuration uses cosine learning rate scheduling with warmup, AdamW optimizer, and a maximum sequence length of 2048 tokens.

Usage

Use this environment when running white-box defense fine-tuning experiments. This is required for the HF_Trainer_For_Defense, Load_Bipia_Supervised_Data_Module, Tokenize_Fn, and Smart_Tokenizer_And_Embedding_Resize implementations. The environment is launched via the `deepspeed` CLI command rather than standard Python.

System Requirements

Dependencies

Python Packages

• `deepspeed` >= 0.9.5
• `torch` >= 2.0.1
• `transformers` >= 4.34.0
• `accelerate` >= 0.15.0
• `peft` (any version)
• `wandb` (for experiment tracking)
• `datasets` >= 2.8.0
• `jsonlines` (any version)

Credentials

• `WANDB_PROJECT`: Weights & Biases project name (configured via TrainingArguments or environment variable).
• `WANDB_RUN`: Weights & Biases run name (configured via TrainingArguments or environment variable).
• `auth_token`: HuggingFace token for gated models (configured in YAML config file).

Quick Install

# Install bipia with all dependencies
pip install .

# Verify DeepSpeed installation
ds_report

Code Evidence

DeepSpeed ZeRO Stage 3 configuration from `defense/white_box/ds_config.json:1-18`:

{
    "train_batch_size": "auto",
    "train_micro_batch_size_per_gpu": "auto",
    "gradient_accumulation_steps": "auto",
    "zero_optimization": {
        "stage": 3,
        "offload_optimizer": {
            "device": "cpu",
            "pin_memory": true
        },
        "overlap_comm": true,
        "contiguous_gradients": true,
        "stage3_gather_16bit_weights_on_model_save": true
    },
    "fp16": {
        "enabled": "auto",
        "auto_cast": true
    }
}

Training arguments with gradient checkpointing from `defense/README.md:106-144`:

deepspeed finetune.py \
  --fp16 True --fp16_opt_level O2 \
  --max_steps 1000 \
  --per_device_train_batch_size 4 \
  --gradient_accumulation_steps 4 \
  --learning_rate 2e-5 \
  --warmup_ratio 0.03 \
  --lr_scheduler_type cosine \
  --model_max_length 2048 \
  --gradient_checkpointing True

use_cache disabled for gradient checkpointing from `defense/white_box/finetune.py:516`:

model.config.use_cache = False

Common Errors

Compatibility Notes

• DeepSpeed ZeRO Stage 3: Optimizer states are offloaded to CPU with pinned memory for efficiency. This reduces GPU memory requirements but increases CPU RAM usage.
• fp16 precision: Training uses fp16 with O2 optimization level. The model weights are gathered in 16-bit for saving (`stage3_gather_16bit_weights_on_model_save`).
• Gradient checkpointing: Enabled by default to reduce memory usage during training. Requires `use_cache=False` on the model config.
• WandB integration: Training logs are reported to Weights & Biases by default. Configure project and run names via arguments.

Related Pages

• Implementation:Microsoft_BIPIA_HF_Trainer_For_Defense
• Implementation:Microsoft_BIPIA_Load_Bipia_Supervised_Data_Module
• Implementation:Microsoft_BIPIA_Tokenize_Fn
• Implementation:Microsoft_BIPIA_Smart_Tokenizer_And_Embedding_Resize